취약점 정보1 썸네일형 리스트형 SEC Consult SA-20140411-0 :: Multiple vulnerabilities in Plex Media Server SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Plex Media Server vulnerable version: confirmed in 0.9.9.10 fixed version: none impact: High homepage: http://www.plex.tv found: 2014-02-06 by: Stefan Viehböck SEC Consult Vulnerability Lab https://www.sec-consult.com ====.. 더보기 Red Hat Security Advisory 2014-0401-02 Red Hat Security Advisory 2014-0401-02 - Red Hat JBoss A-MQ, based on Apache ActiveMQ, is a standards-compliant messaging system that is tailored for use in mission critical applications. Red Hat JBoss A-MQ 6.1.0 is a minor product release that updates Red Hat JBoss A-MQ 6.0.0 and includes several bug fixes and enhancements.-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==========================.. 더보기 Red Hat Security Advisory 2014-0400-03 Red Hat Security Advisory 2014-0400-03 - Red Hat JBoss Fuse, based on Apache ServiceMix, provides a small-footprint, flexible, open source enterprise service bus and integration platform. Security fixes: A flaw was found in the way Apache Santuario XML Security for Java validated XML signatures. Santuario allowed a signature to specify an arbitrary canonicalization algorithm, which would be appl.. 더보기 Ubuntu Security Notice USN-2167-1 ============================================================================ Ubuntu Security Notice USN-2167-1 April 14, 2014 curl vulnerabilities ============================================================================ A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 13.10 - Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 10.04 LTS Summary: Several security issues we.. 더보기 Adobe Reader for Android exposes insecure Javascript interfaces Adobe Reader for Android exposes insecure Javascript interfaces ------------------------------------------------------------------------ Yorick Koster, April 2014 ------------------------------------------------------------------------ Abstract ------------------------------------------------------------------------ Adobe Reader for Android [2] exposes several insecure Javascript interfaces. Thi.. 더보기 PaperThin CommonSpot CMS contains multiple vulnerabilities Overview PaperThin CommonSpot contains multiple vulnerabilities, which may allow an unauthenticated remote attacker to execute arbitrary code on the server. Description PaperThin CommonSpot is a content management system (CMS) that is based on Adobe ColdFusion. CommonSpot is composed of over 3000 individual ColdFusion pages (CFM files). When a web site is created using CommonSpot, most of these .. 더보기 Xangati software release contains relative path traversal and command injection vulnerabilities Overview Xangati's software release contains relative path traversal (CWE-23) and command injection (CWE-78) vulnerabilities. Description Xangati's software release contains relative path traversal (CWE-23) and command injection (CWE-78) vulnerabilities. CWE-23: Relative Path Traversal - CVE-2014-0358 The reporter has provided the following as a proof-of-concept. Authentication is not required t.. 더보기 Artiva Agency Single Sign-On (SSO) feature vulnerability Overview Artiva Agency Single Sign-On (SSO) feature checks only the local Windows login name which could allow an attacker to impersonate another Artiva Agency user. Description Artiva Agency Single Sign-On (SSO) feature when configured with the domain name option allows the currently logged on Windows user to automatically be logged into the Artiva Agency application using the same username wit.. 더보기 Juniper ScreenOS 서비스거부 취약점 주의 권고 개요Juniper社는 ScreenOS 방화벽 제품에 영향을 주는 서비스거부 취약점 내용을 발표 [1]공격자는 악성 SSL/TLS 패킷을 전송하여 서비스거부를 일으킬 수 있으므로, 보안 업데이트가 제공될 때까지 주의 권고설명ScreenOS 방화벽의 SSL/TLS 패킷 처리 중 충돌이 발생하는 서비스 거부 취약점(CVE-2014-2842)해당 시스템영향을 받는 제품ScreenOS 6.3 해결 방안취약점이 확인된 Juniper 장비의 운영자는, 보안 업데이트가 발표될 때까지 해당되는 참고사이트에 명시되어 있는 임시 해결방안을 참고하여 문제를 해결[1] 용어 정리ScreenOS : Jupiter社에서 개발한 방화벽 제품 기타 문의사항한국인터넷진흥원 인터넷침해대응센터: 국번없이 118 [참고사이트][1] http.. 더보기 2014-04-15 취약점 정리 EMC RSA Data Loss Prevention Improper Session Management Local Privilege Escalation Vulnerability 2014-04-15 http://www.securityfocus.com/bid/65914 Elfutils libdw 'check_section()' Function Remote Heap Based Buffer Overflow Vulnerability 2014-04-15 http://www.securityfocus.com/bid/66714 SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability 2014-04-15 http://w.. 더보기 이전 1 ··· 47 48 49 50 51 52 53 ··· 62 다음